必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Chile

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.214.56.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;201.214.56.21.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 23:54:03 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
21.56.214.201.in-addr.arpa domain name pointer pc-21-56-214-201.cm.vtr.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.56.214.201.in-addr.arpa	name = pc-21-56-214-201.cm.vtr.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
125.72.106.6 attack
Sep 22 19:37:32 fhem-rasp sshd[30304]: Invalid user beta from 125.72.106.6 port 42731
...
2020-09-23 05:25:32
45.168.56.51 attack
Lines containing failures of 45.168.56.51
Sep 22 12:40:14 neweola sshd[3293]: Invalid user admin from 45.168.56.51 port 53853
Sep 22 12:40:15 neweola sshd[3293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.168.56.51 
Sep 22 12:40:16 neweola sshd[3293]: Failed password for invalid user admin from 45.168.56.51 port 53853 ssh2
Sep 22 12:40:17 neweola sshd[3293]: Connection closed by invalid user admin 45.168.56.51 port 53853 [preauth]
Sep 22 12:40:20 neweola sshd[3299]: Invalid user admin from 45.168.56.51 port 53855
Sep 22 12:40:21 neweola sshd[3299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.168.56.51 


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.168.56.51
2020-09-23 05:24:10
110.49.71.143 attack
SSH Login Bruteforce
2020-09-23 05:00:47
119.29.234.23 attack
Invalid user r from 119.29.234.23 port 40628
2020-09-23 05:08:30
106.13.190.84 attack
DATE:2020-09-22 21:43:19,IP:106.13.190.84,MATCHES:10,PORT:ssh
2020-09-23 05:10:44
167.249.66.0 attackspam
Invalid user w from 167.249.66.0 port 52961
2020-09-23 05:02:42
198.251.89.136 attack
srvr2: (mod_security) mod_security (id:920350) triggered by 198.251.89.136 (CA/-/tor-exit-05.nonanet.net): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/22 19:04:52 [error] 205395#0: *244540 [client 198.251.89.136] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/MjZL"] [unique_id "160079429271.164836"] [ref "o0,11v26,11"], client: 198.251.89.136, [redacted] request: "HEAD /MjZL HTTP/1.1" [redacted]
2020-09-23 05:25:07
62.149.10.5 attackbots
Received: from mail.jooble.com (mail.jooble.com [62.149.10.5])
Date: Tue, 22 Sep 2020 19:55:45 +0300 (EEST)
From: Nikolay Logvin 
Message-ID: <1125137422.49979770.1600793745183.JavaMail.zimbra@jooble.com>
Subject: Re: Werbefläche für xxxxx
2020-09-23 05:18:26
187.188.240.7 attackspam
Sep 22 22:35:49 h2779839 sshd[4124]: Invalid user webapp from 187.188.240.7 port 55906
Sep 22 22:35:49 h2779839 sshd[4124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.240.7
Sep 22 22:35:49 h2779839 sshd[4124]: Invalid user webapp from 187.188.240.7 port 55906
Sep 22 22:35:51 h2779839 sshd[4124]: Failed password for invalid user webapp from 187.188.240.7 port 55906 ssh2
Sep 22 22:39:23 h2779839 sshd[4242]: Invalid user dbadmin from 187.188.240.7 port 37900
Sep 22 22:39:23 h2779839 sshd[4242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.240.7
Sep 22 22:39:23 h2779839 sshd[4242]: Invalid user dbadmin from 187.188.240.7 port 37900
Sep 22 22:39:26 h2779839 sshd[4242]: Failed password for invalid user dbadmin from 187.188.240.7 port 37900 ssh2
Sep 22 22:42:59 h2779839 sshd[4283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.240.7  user=ro
...
2020-09-23 04:50:52
37.59.45.216 attackbotsspam
106 attacks over the last 10 minutes. Below is a sample of these recent attacks:

September 21, 2020 4:22pm  37.59.45.216 (France)     Blocked because the IP is blacklisted
September 21, 2020 4:22pm  37.59.45.216 (France)     Blocked because the IP is blacklisted
September 21, 2020 4:22pm  37.59.45.216 (France)     Blocked because the IP is blacklisted
September 21, 2020 4:22pm  37.59.45.216 (France)     Blocked because the IP is blacklisted
September 21, 2020 4:22pm  37.59.45.216 (France)     Blocked
2020-09-23 04:51:33
106.52.137.134 attackbotsspam
2020-09-21T12:53:11.618786hostname sshd[112241]: Failed password for invalid user jenkins from 106.52.137.134 port 51986 ssh2
...
2020-09-23 04:51:08
67.207.89.167 attack
$f2bV_matches
2020-09-23 05:13:11
46.200.73.236 attack
Invalid user admin from 46.200.73.236 port 41910
2020-09-23 05:14:14
185.36.81.48 attackspam
[2020-09-22 16:47:28] NOTICE[1159][C-00000b2e] chan_sip.c: Call from '' (185.36.81.48:64873) to extension '00441519470538' rejected because extension not found in context 'public'.
[2020-09-22 16:47:28] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-22T16:47:28.529-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441519470538",SessionID="0x7fcaa0223ec8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.36.81.48/64873",ACLName="no_extension_match"
[2020-09-22 16:53:37] NOTICE[1159][C-00000b38] chan_sip.c: Call from '' (185.36.81.48:55705) to extension '00441519470538' rejected because extension not found in context 'public'.
[2020-09-22 16:53:37] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-22T16:53:37.526-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441519470538",SessionID="0x7fcaa00d6858",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.36.
...
2020-09-23 04:59:10
5.189.185.19 attackbotsspam
Sep 23 01:50:10 our-server-hostname sshd[30922]: Invalid user local from 5.189.185.19
Sep 23 01:50:10 our-server-hostname sshd[30922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.189.185.19 
Sep 23 01:50:12 our-server-hostname sshd[30922]: Failed password for invalid user local from 5.189.185.19 port 49136 ssh2
Sep 23 02:03:25 our-server-hostname sshd[32624]: Invalid user base from 5.189.185.19
Sep 23 02:03:25 our-server-hostname sshd[32624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.189.185.19 
Sep 23 02:03:27 our-server-hostname sshd[32624]: Failed password for invalid user base from 5.189.185.19 port 44686 ssh2
Sep 23 02:07:27 our-server-hostname sshd[749]: Invalid user sklep from 5.189.185.19
Sep 23 02:07:27 our-server-hostname sshd[749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.189.185.19 
Sep 23 02:07:29 our-server-hostname........
-------------------------------
2020-09-23 04:54:22

最近上报的IP列表

201.216.108.80 201.216.223.16 201.216.197.151 201.216.252.38
201.217.202.233 201.217.209.34 201.217.195.34 201.217.243.57
201.217.241.118 201.217.221.122 201.217.244.6 201.217.5.168
201.217.244.117 201.217.241.135 201.218.12.73 201.217.3.99
201.218.20.211 201.218.221.66 201.218.214.106 201.217.43.217